Rest data services
This hub aggregates every CVE we track for Rest data services, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
38
CVEs tracked
5
Critical
5
High
1
In CISA KEV
Severity distribution
MEDIUM26HIGH5CRITICAL5LOW2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
10
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Rest data services.
- CVE-2026-46843Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network ...5.3
- CVE-2026-46842Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network ...5.3
- CVE-2026-46841Vulnerability in Oracle REST Data Services (component: General). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with netwo...5.3
- CVE-2026-46839Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network a...9.9
- CVE-2026-46840Vulnerability in Oracle REST Data Services (component: Backend-as-a-Service). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attack...10.0
- CVE-2026-46830Vulnerability in Oracle REST Data Services (component: Mongoapi). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with netw...5.3
- CVE-2026-46829Vulnerability in Oracle REST Data Services (component: Mongoapi). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows unauthenticated attacker with netw...7.5
- CVE-2026-46775Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network a...9.9
- CVE-2026-35277Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Easily exploitable vulnerability allows low privileged attacker with network a...8.1
- CVE-2026-35266Vulnerability in Oracle REST Data Services (component: Core). Supported versions that are affected are 24.2.0-26.1.0. Difficult to exploit vulnerability allows low privileged attacker with network...7.9
- CVE-2025-30756Vulnerability in Oracle REST Data Services (component: General). The supported version that is affected is 24.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network ac...6.1
- CVE-2021-41184XSS in the `of` option of the `.position()` util6.5
- CVE-2021-41183XSS in `*Text` options of the Datepicker widget6.5
- CVE-2021-41182XSS in the `altField` option of the Datepicker widget6.5
- CVE-2021-32014SheetJS and SheetJS Pro through 0.16.9 allows attackers to cause a denial of service (CPU consumption) via a crafted .xlsx document that is mishandled when read by xlsx.js.5.5
Product normalization is registry-driven with AI assist and human review. How it works